Submit #483347: esafenet CDG V5 Cross-Site Scripting (XSS)info

Titelesafenet CDG V5 Cross-Site Scripting (XSS)
BeschreibungA vulnerability classified as critical has been discovered in esafenet's CDG v5 product. The curpage parameter in the todoDetail.jsp interface is not properly validated and sanitized, leading to a Cross-Site Scripting (XSS) vulnerability. An attacker can craft a malicious curpage parameter to inject JavaScript code, which can be executed in the user's browser.
Quelle⚠️ https://github.com/Rain1er/report/blob/main/CDG/todoDetail_1.md
Benutzer
 raindrop (UID 80297)
Einreichung16.01.2025 10:27 (vor 1 Jahr)
Moderieren28.01.2025 15:34 (12 days later)
StatusAkzeptiert
VulDB Eintrag293918 [ESAFENET CDG V5 /todoDetail.jsp curpage Cross Site Scripting]
Punkte18

ZurückÜbersichtWeiter

Interested in the pricing of exploits?

See the underground prices here!